From a283107760379b869b9b730e03b9d2d4aac4e736 Mon Sep 17 00:00:00 2001 From: Julian Andres Klode Date: Wed, 3 Jan 2018 23:35:18 +0100 Subject: Release 1.6~alpha6 --- doc/po/apt-doc.pot | 965 +++++++++++++++++++++++++++++++++++++++++++++-------- 1 file changed, 829 insertions(+), 136 deletions(-) (limited to 'doc/po/apt-doc.pot') diff --git a/doc/po/apt-doc.pot b/doc/po/apt-doc.pot index 7f2af495b..c23ed5183 100644 --- a/doc/po/apt-doc.pot +++ b/doc/po/apt-doc.pot @@ -5,9 +5,9 @@ #, fuzzy msgid "" msgstr "" -"Project-Id-Version: apt-doc 1.6~alpha5\n" +"Project-Id-Version: apt-doc 1.6~alpha6\n" "Report-Msgid-Bugs-To: APT Development Team \n" -"POT-Creation-Date: 2017-11-12 19:57+0100\n" +"POT-Creation-Date: 2018-01-03 22:34+0000\n" "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" "Last-Translator: FULL NAME \n" "Language-Team: LANGUAGE \n" @@ -505,7 +505,9 @@ msgstr "" #: apt.8.xml apt-get.8.xml apt-cache.8.xml apt-key.8.xml apt-mark.8.xml #: apt-secure.8.xml apt-cdrom.8.xml apt-config.8.xml apt.conf.5.xml #: apt_preferences.5.xml sources.list.5.xml apt-extracttemplates.1.xml -#: apt-sortpkgs.1.xml apt-ftparchive.1.xml +#: apt-sortpkgs.1.xml apt-ftparchive.1.xml apt_auth.conf.5.xml +#: apt-transport-http.1.xml apt-transport-https.1.xml +#: apt-transport-mirror.1.xml msgid "APT" msgstr "" @@ -518,7 +520,9 @@ msgstr "" #: apt.8.xml apt-get.8.xml apt-cache.8.xml apt-key.8.xml apt-mark.8.xml #: apt-secure.8.xml apt-cdrom.8.xml apt-config.8.xml apt.conf.5.xml #: apt_preferences.5.xml sources.list.5.xml apt-extracttemplates.1.xml -#: apt-sortpkgs.1.xml apt-ftparchive.1.xml +#: apt-sortpkgs.1.xml apt-ftparchive.1.xml apt_auth.conf.5.xml +#: apt-transport-http.1.xml apt-transport-https.1.xml +#: apt-transport-mirror.1.xml msgid "Description" msgstr "" @@ -706,7 +710,8 @@ msgstr "" #: apt.8.xml apt-get.8.xml apt-cache.8.xml apt-key.8.xml apt-mark.8.xml #: apt-secure.8.xml apt-cdrom.8.xml apt-config.8.xml apt.conf.5.xml #: apt_preferences.5.xml sources.list.5.xml apt-extracttemplates.1.xml -#: apt-sortpkgs.1.xml apt-ftparchive.1.xml +#: apt-sortpkgs.1.xml apt-ftparchive.1.xml apt_auth.conf.5.xml +#: apt-transport-http.1.xml apt-transport-https.1.xml msgid "See Also" msgstr "" @@ -1456,7 +1461,7 @@ msgstr "" #. type: Content of: #: apt-get.8.xml apt-cache.8.xml apt-key.8.xml apt-mark.8.xml apt.conf.5.xml -#: apt_preferences.5.xml +#: apt_preferences.5.xml apt_auth.conf.5.xml msgid "Files" msgstr "" @@ -2089,6 +2094,8 @@ msgstr "" #. type: Content of: <refentry><refsect1><title> #: apt-key.8.xml apt-mark.8.xml apt-mark.8.xml apt-cdrom.8.xml +#: apt-transport-http.1.xml apt-transport-https.1.xml +#: apt-transport-mirror.1.xml msgid "Options" msgstr "" @@ -2764,7 +2771,7 @@ msgid "dburrows@debian.org" msgstr "" #. type: Content of: <refentry><refmeta><manvolnum> -#: apt.conf.5.xml apt_preferences.5.xml sources.list.5.xml +#: apt.conf.5.xml apt_preferences.5.xml sources.list.5.xml apt_auth.conf.5.xml msgid "5" msgstr "" @@ -3279,123 +3286,9 @@ msgstr "" #. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> #: apt.conf.5.xml msgid "" -"<literal>http::Proxy</literal> sets the default proxy to use for HTTP " -"URIs. It is in the standard form of " -"<literal>http://[[user][:pass]@]host[:port]/</literal>. Per host proxies " -"can also be specified by using the form " -"<literal>http::Proxy::<host></literal> with the special keyword " -"<literal>DIRECT</literal> meaning to use no proxies. If no one of the above " -"settings is specified, <envar>http_proxy</envar> environment variable will " -"be used." -msgstr "" - -#. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> -#: apt.conf.5.xml -msgid "" -"Three settings are provided for cache control with HTTP/1.1 compliant proxy " -"caches. <literal>No-Cache</literal> tells the proxy not to use its cached " -"response under any circumstances. <literal>Max-Age</literal> sets the " -"allowed maximum age (in seconds) of an index file in the cache of the " -"proxy. <literal>No-Store</literal> specifies that the proxy should not " -"store the requested archive files in its cache, which can be used to prevent " -"the proxy from polluting its cache with (big) .deb files." -msgstr "" - -#. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> -#: apt.conf.5.xml apt.conf.5.xml -msgid "" -"The option <literal>timeout</literal> sets the timeout timer used by the " -"method; this value applies to the connection as well as the data timeout." -msgstr "" - -#. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> -#: apt.conf.5.xml -msgid "" -"The setting <literal>Acquire::http::Pipeline-Depth</literal> can be used to " -"enable HTTP pipelining (RFC 2616 section 8.1.2.2) which can be beneficial " -"e.g. on high-latency connections. It specifies how many requests are sent in " -"a pipeline. APT tries to detect and workaround misbehaving webservers and " -"proxies at runtime, but if you know that yours does not conform to the " -"HTTP/1.1 specification pipelining can be disabled by setting the value to " -"0. It is enabled by default with the value 10." -msgstr "" - -#. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> -#: apt.conf.5.xml -msgid "" -"<literal>Acquire::http::AllowRedirect</literal> controls whether APT will " -"follow redirects, which is enabled by default." -msgstr "" - -#. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> -#: apt.conf.5.xml -msgid "" -"The used bandwidth can be limited with " -"<literal>Acquire::http::Dl-Limit</literal> which accepts integer values in " -"kilobytes per second. The default value is 0 which deactivates the limit and " -"tries to use all available bandwidth. Note that this option implicitly " -"disables downloading from multiple servers at the same time." -msgstr "" - -#. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> -#: apt.conf.5.xml -msgid "" -"<literal>Acquire::http::User-Agent</literal> can be used to set a different " -"User-Agent for the http download method as some proxies allow access for " -"clients only if the client uses a known identifier." -msgstr "" - -#. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> -#: apt.conf.5.xml -msgid "" -"<literal>Acquire::http::Proxy-Auto-Detect</literal> can be used to specify " -"an external command to discover the http proxy to use. The first and only " -"parameter is an URI denoting the host to be contacted to allow for " -"host-specific configuration. APT expects the command to output the proxy on " -"stdout as a single line in the style <literal>http://proxy:port/</literal> " -"or the word <literal>DIRECT</literal> if no proxy should be used. No output " -"indicates that the generic proxy settings should be used. Note that " -"auto-detection will not be used for a host if a host-specific proxy " -"configuration is already set via " -"<literal>Acquire::http::Proxy::<replaceable>HOST</replaceable></literal>. " -"See the &squid-deb-proxy-client; package for an example implementation that " -"uses avahi. This option takes precedence over the legacy option name " -"<literal>ProxyAutoDetect</literal>." -msgstr "" - -#. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> -#: apt.conf.5.xml -msgid "" -"The <literal>Cache-control</literal>, <literal>Timeout</literal>, " -"<literal>AllowRedirect</literal>, <literal>Dl-Limit</literal> and " -"<literal>proxy</literal> options work for HTTPS URIs in the same way as for " -"the <literal>http</literal> method, and default to the same values if they " -"are not explicitly set. The <literal>Pipeline-Depth</literal> option is not " -"yet supported." -msgstr "" - -#. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> -#: apt.conf.5.xml -msgid "" -"<literal>CaInfo</literal> suboption specifies place of file that holds info " -"about trusted certificates. <literal><host>::CaInfo</literal> is the " -"corresponding per-host option. <literal>Verify-Peer</literal> boolean " -"suboption determines whether or not the server's host certificate should be " -"verified against trusted certificates. " -"<literal><host>::Verify-Peer</literal> is the corresponding per-host " -"option. <literal>Verify-Host</literal> boolean suboption determines whether " -"or not the server's hostname should be verified. " -"<literal><host>::Verify-Host</literal> is the corresponding per-host " -"option. <literal>SslCert</literal> determines what certificate to use for " -"client authentication. <literal><host>::SslCert</literal> is the " -"corresponding per-host option. <literal>SslKey</literal> determines what " -"private key to use for client " -"authentication. <literal><host>::SslKey</literal> is the corresponding " -"per-host option. <literal>SslForceVersion</literal> overrides default SSL " -"version to use. It can contain either of the strings " -"'<literal>TLSv1</literal>' or '<literal>SSLv3</literal>'. " -"<literal><host>::SslForceVersion</literal> is the corresponding " -"per-host option." +"The options in these scopes configure APTs acquire transports for the " +"protocols HTTP and HTTPS and are documented in the &apt-transport-http; and " +"&apt-transport-https; manpages respectively." msgstr "" #. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> @@ -3419,6 +3312,13 @@ msgid "" "<literal>$(SITE_PORT)</literal>." msgstr "" +#. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> +#: apt.conf.5.xml +msgid "" +"The option <literal>timeout</literal> sets the timeout timer used by the " +"method; this value applies to the connection as well as the data timeout." +msgstr "" + #. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> #: apt.conf.5.xml msgid "" @@ -4263,6 +4163,8 @@ msgstr "" #. type: Content of: <refentry><refsect1><title> #: apt.conf.5.xml apt_preferences.5.xml sources.list.5.xml apt-ftparchive.1.xml +#: apt-transport-http.1.xml apt-transport-https.1.xml +#: apt-transport-mirror.1.xml msgid "Examples" msgstr "" @@ -5389,9 +5291,10 @@ msgid "" "entry. Removing the field or setting it to yes reenables it. Options have " "the same syntax as every other field: A fieldname separated by a colon " "(<literal>:</literal>) and optionally spaces from its value(s). Note " -"especially that multiple values are separated by spaces, not by commas as in " -"the one-line format. Multivalue fields like <literal>Architectures</literal> " -"also have <literal>Architectures-Add</literal> and " +"especially that multiple values are separated by whitespaces (like spaces, " +"tabs and newlines), not by commas as in the one-line format. Multivalue " +"fields like <literal>Architectures</literal> also have " +"<literal>Architectures-Add</literal> and " "<literal>Architectures-Remove</literal> to modify the default value rather " "than replacing it." msgstr "" @@ -5718,19 +5621,23 @@ msgstr "" msgid "The currently recognized URI types are:" msgstr "" +#. type: Content of: <refentry><refsect1><para><variablelist><varlistentry><term> +#: sources.list.5.xml +msgid "(&apt-transport-http;)" +msgstr "" + #. type: Content of: <refentry><refsect1><para><variablelist><varlistentry><listitem><para> #: sources.list.5.xml msgid "" "The http scheme specifies an HTTP server for an archive and is the most " -"commonly used method, with many options in the " -"<literal>Acquire::http</literal> scope detailed in &apt-conf;. The URI can " -"directly include login information if the archive requires it, but the use " -"of &apt-authconf; should be preferred. The method also supports SOCKS5 and " -"HTTP(S) proxies either configured via apt-specific configuration or " -"specified by the environment variable <envar>http_proxy</envar> in the " -"format (assuming an HTTP proxy requiring authentication) " -"<replaceable>http://user:pass@server:port/</replaceable>. The " -"authentication details for proxies can also be supplied via &apt-authconf;." +"commonly used method. The URI can directly include login information if the " +"archive requires it, but the use of &apt-authconf; should be preferred. The " +"method also supports SOCKS5 and HTTP(S) proxies either configured via " +"apt-specific configuration or specified by the environment variable " +"<envar>http_proxy</envar> in the format (assuming an HTTP proxy requiring " +"authentication) <replaceable>http://user:pass@server:port/</replaceable>. " +"The authentication details for proxies can also be supplied via " +"&apt-authconf;." msgstr "" #. type: Content of: <refentry><refsect1><para><variablelist><varlistentry><listitem><para> @@ -5744,6 +5651,11 @@ msgid "" "chosen transport method. See &apt-secure; for details." msgstr "" +#. type: Content of: <refentry><refsect1><para><variablelist><varlistentry><term> +#: sources.list.5.xml +msgid "(&apt-transport-https;)" +msgstr "" + #. type: Content of: <refentry><refsect1><para><variablelist><varlistentry><listitem><para> #: sources.list.5.xml msgid "" @@ -6061,6 +5973,8 @@ msgstr "" #. type: Content of: <refentry><refmeta><manvolnum> #: apt-extracttemplates.1.xml apt-sortpkgs.1.xml apt-ftparchive.1.xml +#: apt-transport-http.1.xml apt-transport-https.1.xml +#: apt-transport-mirror.1.xml msgid "1" msgstr "" @@ -6860,6 +6774,785 @@ msgid "" "100 on error." msgstr "" +#. type: Content of: <refentry><refnamediv><refpurpose> +#: apt_auth.conf.5.xml +msgid "Login configuration file for APT sources and proxies" +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt_auth.conf.5.xml +msgid "" +"APT configuration files like &sources-list; or &apt-conf; need to be " +"accessible for everyone using apt tools on the system to have access to all " +"package-related information like the available packages in a " +"repository. Login information needed to connect to a proxy or to download " +"data from a repository on the other hand shouldn't always be accessible by " +"everyone and can hence not be placed in a file with world-readable file " +"permissions." +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt_auth.conf.5.xml +msgid "" +"The APT auth.conf file <filename>/etc/apt/auth.conf</filename> can be used " +"to store login information in a netrc-like format with restrictive file " +"permissions." +msgstr "" + +#. type: Content of: <refentry><refsect1><title> +#: apt_auth.conf.5.xml +msgid "netrc-like format" +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt_auth.conf.5.xml +msgid "" +"The format defined here is similar to the format of the " +"<filename>~/.netrc</filename> file used by " +"<citerefentry><refentrytitle><command>ftp</command></refentrytitle><manvolnum>1</manvolnum></citerefentry> " +"and similar programs interacting with servers. It is a simple token-based " +"format with the following tokens being recognized; Unknown tokens will be " +"ignored. Tokens may be separated by spaces, tabs or newlines." +msgstr "" + +#. type: Content of: <refentry><refsect1><variablelist><varlistentry><term> +#: apt_auth.conf.5.xml +msgid "" +"<literal>machine</literal> " +"<replaceable>hostname</replaceable>[:<replaceable>port</replaceable>][/<replaceable>path</replaceable>]" +msgstr "" + +#. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> +#: apt_auth.conf.5.xml +msgid "" +"Entries are looked up by searching for the " +"<emphasis><literal>machine</literal></emphasis> token matching the hostname " +"of the URI apt needs login information for. Extending the netrc-format a " +"portnumber can be specified. If no port is given the token matches for all " +"ports. Similar the path is optional and only needed and useful if multiple " +"repositories with different login information reside on the same server. A " +"machine token with a path matches if the path in the URI starts with the " +"path given in the token. Once a match is made, the subsequent tokens are " +"processed, stopping when the end of file is reached or another " +"<emphasis><literal>machine</literal></emphasis> token is encountered." +msgstr "" + +#. type: Content of: <refentry><refsect1><variablelist><varlistentry><term> +#: apt_auth.conf.5.xml +msgid "<literal>login</literal> <replaceable>name</replaceable>" +msgstr "" + +#. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> +#: apt_auth.conf.5.xml +msgid "The username to be used." +msgstr "" + +#. type: Content of: <refentry><refsect1><variablelist><varlistentry><term> +#: apt_auth.conf.5.xml +msgid "<literal>password</literal> <replaceable>string</replaceable>" +msgstr "" + +#. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> +#: apt_auth.conf.5.xml +msgid "The password to be used." +msgstr "" + +#. type: Content of: <refentry><refsect1><title> +#: apt_auth.conf.5.xml +msgid "Example" +msgstr "" + +#. type: Content of: <refentry><refsect1><para><literallayout> +#: apt_auth.conf.5.xml +#, no-wrap +msgid "deb http://example.org/debian &debian-stable-codename; main" +msgstr "" + +#. type: Content of: <refentry><refsect1><para><literallayout> +#: apt_auth.conf.5.xml +#, no-wrap +msgid "deb http://apt:debian@example.org/debian &debian-stable-codename; main" +msgstr "" + +#. type: Content of: <refentry><refsect1><para><literallayout> +#: apt_auth.conf.5.xml +#, no-wrap +msgid "" +"machine example.org\n" +"login apt\n" +"password debian" +msgstr "" + +#. type: Content of: <refentry><refsect1><para><literallayout> +#: apt_auth.conf.5.xml +#, no-wrap +msgid "machine example.org login apt password debian" +msgstr "" + +#. type: Content of: <refentry><refsect1><para><literallayout> +#: apt_auth.conf.5.xml +#, no-wrap +msgid "" +"machine example.org/deb login apt password debian\n" +"machine example.org/debian login apt password debian\n" +"machine example.org/debian/ login apt password debian\n" +msgstr "" + +#. type: Content of: <refentry><refsect1><para><literallayout> +#: apt_auth.conf.5.xml +#, no-wrap +msgid "" +"machine example.org:80 login apt password debian\n" +"machine example.org/deb/ login apt password debian\n" +"machine example.org/ubuntu login apt password debian\n" +"machine example.orga login apt password debian\n" +"machine example.net login apt password debian\n" +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt_auth.conf.5.xml +msgid "" +"Supplying login information for a user named <literal>apt</literal> with the " +"password <literal>debian</literal> for the &sources-list; entry <placeholder " +"type=\"literallayout\" id=\"0\"/> could be done in the entry directly: " +"<placeholder type=\"literallayout\" id=\"1\"/> Alternatively an entry like " +"the following in the auth.conf file could be used: <placeholder " +"type=\"literallayout\" id=\"2\"/> Or alternatively within a single line: " +"<placeholder type=\"literallayout\" id=\"3\"/> If you need to be more " +"specific all of these lines will also apply to the example entry: " +"<placeholder type=\"literallayout\" id=\"4\"/> On the other hand neither of " +"the following lines apply: <placeholder type=\"literallayout\" id=\"5\"/>" +msgstr "" + +#. type: Content of: <refentry><refsect1><title> +#: apt_auth.conf.5.xml +msgid "Notes" +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt_auth.conf.5.xml +msgid "" +"Basic support for this feature is present since version 0.7.25, but was " +"undocumented for years. The documentation was added in version 1.5 changing " +"also the implementation slightly. For maximum backward compatibility you " +"should avoid multiple <literal>machine</literal> tokens with the same " +"hostname, but if you need multiple they should all have a path specified in " +"the <literal>machine</literal> token." +msgstr "" + +#. type: Content of: <refentry><refsect1><variablelist><varlistentry><term> +#: apt_auth.conf.5.xml +msgid "<filename>/etc/apt/auth.conf</filename>" +msgstr "" + +#. type: Content of: <refentry><refsect1><variablelist><varlistentry><listitem><para> +#: apt_auth.conf.5.xml +msgid "" +"Login information for APT sources and proxies in a netrc-like format. " +"Configuration Item: <literal>Dir::Etc::netrc</literal>." +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt_auth.conf.5.xml +msgid "&apt-conf; &sources-list;" +msgstr "" + +#. type: Content of: <refentry><refnamediv><refpurpose> +#: apt-transport-http.1.xml +msgid "APT transport for downloading via the Hypertext Transfer Protocol (HTTP)" +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt-transport-http.1.xml +msgid "" +"This APT transport allows the use of repositories accessed via the Hypertext " +"Transfer Protocol (HTTP). It is available by default and probably the most " +"used of all transports. Note that a transport is never called directly by a " +"user but used by APT tools based on user configuration." +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt-transport-http.1.xml +msgid "" +"HTTP is an unencrypted transport protocol meaning that the whole " +"communication with the remote server (or proxy) can be observed by a " +"sufficiently capable attacker referred to commonly as man in the middle " +"(MITM). Such an attacker can <emphasis>not</emphasis> modify the " +"communication to compromise the security of your system through as APTs data " +"security model is independent of the chosen transport method. This is " +"explained in detail in &apt-secure;. An overview over available transport " +"methods is given in &sources-list;." +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt-transport-http.1.xml +msgid "" +"Various options are available to modify its behaviour which can be set in an " +"&apt-conf; file ranging from proxy configuration to workaround for specific " +"server insufficiencies." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><title> +#: apt-transport-http.1.xml +msgid "Proxy Configuration" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-http.1.xml +msgid "" +"The environment variable <envar>http_proxy</envar> is supported for system " +"wide configuration. Proxies specific to apt can be configured via the " +"option <literal>Acquire::http::Proxy</literal>. Proxies which should be " +"used only for certain hosts can be specified via " +"<literal>Acquire::http::Proxy::<replaceable>host</replaceable></literal>. " +"Even more finegrained control can be achieved via proxy autodetection " +"detailed further below. All these options use the URI format " +"<literal><replaceable>scheme</replaceable>://[[<replaceable>user</replaceable>][:<replaceable>pass</replaceable>]@]<replaceable>host</replaceable>[:<replaceable>port</replaceable>]/</literal>. " +"Supported URI schemes are <literal>socks5h</literal> (SOCKS5 with remote DNS " +"resolution), <literal>http</literal> and <literal>https</literal>. " +"Authentification details can be supplied via &apt-authconf; instead of " +"including it in the URI directly." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-http.1.xml +msgid "" +"The various APT configuration options support the special value " +"<literal>DIRECT</literal> meaning that no proxy should be used. The " +"environment variable <envar>no_proxy</envar> with the same propose is also " +"supported." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-http.1.xml +msgid "" +"Further more there are three settings provided for cache control with " +"HTTP/1.1 compliant proxy caches: <literal>Acquire::http::No-Cache</literal> " +"tells the proxy not to use its cached response under any circumstances. " +"<literal>Acquire::http::Max-Age</literal> sets the allowed maximum age (in " +"seconds) of an index file in the cache of the proxy. " +"<literal>Acquire::http::No-Store</literal> specifies that the proxy should " +"not store the requested archive files in its cache, which can be used to " +"prevent the proxy from polluting its cache with (big) .deb files." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><title> +#: apt-transport-http.1.xml +msgid "Automatic Proxy Configuration" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-http.1.xml +msgid "" +"<literal>Acquire::http::Proxy-Auto-Detect</literal> can be used to specify " +"an external command to discover the http proxy to use. The first and only " +"parameter is an URI denoting the host to be contacted to allow for " +"host-specific configuration. APT expects the command to output the proxy on " +"stdout as a single line in the previously specified URI format or the word " +"<literal>DIRECT</literal> if no proxy should be used. No output indicates " +"that the generic proxy settings should be used." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-http.1.xml +msgid "" +"Note that auto-detection will not be used for a host if a host-specific " +"proxy configuration is already set via " +"<literal>Acquire::http::Proxy::<replaceable>host</replaceable></literal>." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-http.1.xml +msgid "" +"See the &squid-deb-proxy-client; and &auto-apt-proxy; packages for example " +"implementations." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-http.1.xml +msgid "" +"This option takes precedence over the legacy option name " +"<literal>Acquire::http::ProxyAutoDetect</literal>." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><title> +#: apt-transport-http.1.xml +msgid "Connection Configuration" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-http.1.xml +msgid "" +"The option <literal>Acquire::http::Timeout</literal> sets the timeout timer " +"used by the method; this value applies to the connection as well as the data " +"timeout." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-http.1.xml +msgid "" +"The used bandwidth can be limited with " +"<literal>Acquire::http::Dl-Limit</literal> which accepts integer values in " +"kilobytes per second. The default value is 0 which deactivates the limit and " +"tries to use all available bandwidth. Note that this option implicitly " +"disables downloading from multiple servers at the same time." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-http.1.xml +msgid "" +"The setting <literal>Acquire::http::Pipeline-Depth</literal> can be used to " +"enable HTTP pipelining (RFC 2616 section 8.1.2.2) which can be beneficial " +"e.g. on high-latency connections. It specifies how many requests are sent in " +"a pipeline. APT tries to detect and workaround misbehaving webservers and " +"proxies at runtime, but if you know that yours does not conform to the " +"HTTP/1.1 specification pipelining can be disabled by setting the value to " +"0. It is enabled by default with the value 10." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-http.1.xml +msgid "" +"<literal>Acquire::http::AllowRedirect</literal> controls whether APT will " +"follow redirects, which is enabled by default." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-http.1.xml +msgid "" +"<literal>Acquire::http::User-Agent</literal> can be used to set a different " +"User-Agent for the http download method as some proxies allow access for " +"clients only if the client uses a known identifier." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-http.1.xml +msgid "" +"<literal>Acquire::http::SendAccept</literal> is enabled by default and sends " +"a <literal>Accept: text/*</literal> header field to the server for requests " +"without file extensions to prevent the server from attempting content " +"negotiation." +msgstr "" + +#. type: Content of: <refentry><refsect1><literallayout> +#: apt-transport-http.1.xml +#, no-wrap +msgid "" +"Acquire::http {\n" +"\tProxy::example.org \"DIRECT\";\n" +"\tProxy \"socks5h://apt:pass@localhost:9050\";\n" +"\tProxy-Auto-Detect \"/usr/local/bin/apt-http-proxy-auto-detect\";\n" +"\tNo-Cache \"true\";\n" +"\tMax-Age \"3600\";\n" +"\tNo-Store \"true\";\n" +"\tTimeout \"10\";\n" +"\tDl-Limit \"42\";\n" +"\tPipeline-Depth \"0\";\n" +"\tAllowRedirect \"false\";\n" +"\tUser-Agent \"My APT-HTTP\";\n" +"\tSendAccept \"false\";\n" +"};\n" +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt-transport-http.1.xml +msgid "&apt-conf; &apt-authconf; &sources-list;" +msgstr "" + +#. type: Content of: <refentry><refnamediv><refpurpose> +#: apt-transport-https.1.xml +msgid "APT transport for downloading via the HTTP Secure protocol (HTTPS)" +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt-transport-https.1.xml +msgid "" +"This APT transport allows the use of repositories accessed via the HTTP " +"Secure protocol (HTTPS) also referred to as HTTP over TLS. It is available " +"by default since apt 1.5 and was before that available in a " +"<package>apt-transport-https</package> package. Note that a transport is " +"never called directly by a user but used by APT tools based on user " +"configuration." +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt-transport-https.1.xml +msgid "" +"HTTP is by itself an unencrypted transport protocol (compare " +"&apt-transport-http;), which, as indicated by the appended S is wrapped in " +"an encrypted layer known as Transport Layer Security (TLS) which provides " +"end-to-end encryption. A sufficiently capable attacker can still observe " +"the communication partners and deeper analyse of the encrypted communcation " +"might still reveal important details. An overview over available " +"alternative transport methods is given in &sources-list;." +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt-transport-https.1.xml +msgid "" +"The HTTPS protocol is based on the HTTP protocol and as such this " +"implementation has the same relation meaning that all options supported by " +"&apt-transport-http; are also available via " +"<literal>Acquire::https</literal> and will default to the same values " +"specified for <literal>Acquire::http</literal>. This manpage will only " +"document the options <emphasis>unique to https</emphasis>." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><title> +#: apt-transport-https.1.xml +msgid "Server credentials" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-https.1.xml +msgid "" +"By default all certificates trusted by the system (see " +"<package>ca-certificates</package> package) are used for the verification of " +"the server certificate. An alternative certificate authority (CA) can be " +"configured with the <literal>Acquire::https::CAInfo</literal> option and its " +"host-specific option " +"<literal>Acquire::https::CAInfo::<replaceable>host</replaceable></literal>. " +"The option specifies a file is made of the concatenation of the CA " +"certificates (in PEM format) creating the chain used for the verification of " +"the path from the root (self signed one). If the remote server provides the " +"whole chain during the exchange, the file need only contain the root " +"certificate. Otherwise, the whole chain is required. If you need to support " +"multiple authorities, the only way is to concatenate everything." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-https.1.xml +msgid "" +"A custom certificate revocation list (CRL) can be configured with the " +"options <literal>Acquire::https::CRLFile</literal> and " +"<literal>Acquire::https::CRLFile::<replaceable>host</replaceable></literal> " +"respectively. Like the previous option a file in PEM format needs to be " +"specified." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><title> +#: apt-transport-https.1.xml +msgid "Disabling security" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-https.1.xml +msgid "" +"When authenticating the server, if the certificate verification fails for " +"some reason (expired, revoked, man in the middle, …), the connection fails. " +"This is obviously what you want in all cases and what the default value " +"(true) of the option <literal>Acquire::https::Verify-Peer</literal> and its " +"host-specific variant provides. If you know <emphasis>exactly</emphasis> " +"what you are doing, setting this option to \"false\" allows you to skip peer " +"certificate verification and make the exchange succeed. Again, this option " +"is for debugging or testing purpose only as it removes all security provided " +"by the use of HTTPS." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-https.1.xml +msgid "" +"Similarly the option <literal>Acquire::https::Verify-Host</literal> and its " +"host-specific variant can be used to deactivate a security feature: The " +"certificate provided by the server includes the identity of the server which " +"should match the DNS name used to access it. By default, as requested by RFC " +"2818, the name of the mirror is checked against the identity found in the " +"certificate. This default behavior is safe and should not be changed, but if " +"you know that the server you are using has a DNS name which does not match " +"the identity in its certificate, you can set the option to \"false\", which " +"will prevent the comparison to be done." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><title> +#: apt-transport-https.1.xml +msgid "Client authentication" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-https.1.xml +msgid "" +"Beside the password based authentication available (see &apt-authconf;) " +"HTTPS supports authentication based on client certificates as well via " +"<literal>Acquire::https::SSLCert</literal> and " +"<literal>Acquire::https::SSLKey</literal>. They respectively should be set " +"to the filename of the X.509 client certificate and the associated " +"(unencrypted) private key, both in PEM format. In practice the use of the " +"host-specific variants of both options is highly recommended." +msgstr "" + +#. type: Content of: <refentry><refsect1><literallayout> +#: apt-transport-https.1.xml +#, no-wrap +msgid "" +"Acquire::https {\n" +"\tProxy::example.org \"DIRECT\";\n" +"\tProxy \"socks5h://apt:pass@localhost:9050\";\n" +"\tProxy-Auto-Detect \"/usr/local/bin/apt-https-proxy-auto-detect\";\n" +"\tNo-Cache \"true\";\n" +"\tMax-Age \"3600\";\n" +"\tNo-Store \"true\";\n" +"\tTimeout \"10\";\n" +"\tDl-Limit \"42\";\n" +"\tPipeline-Depth \"0\";\n" +"\tAllowRedirect \"false\";\n" +"\tUser-Agent \"My APT-HTTPS\";\n" +"\tSendAccept \"false\";\n" +"\n" +"\tCAInfo \"/path/to/ca/certs.pem\";\n" +"\tCRLFile \"/path/to/all/crl.pem\";\n" +"\tVerify-Peer \"true\";\n" +"\tVerify-Host::broken.example.org \"false\";\n" +"\tSSLCert::example.org \"/path/to/client/cert.pem\";\n" +"\tSSLKey::example.org \"/path/to/client/key.pem\"\n" +"};\n" +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt-transport-https.1.xml +msgid "&apt-transport-http; &apt-conf; &apt-authconf; &sources-list;" +msgstr "" + +#. type: Content of: <refentry><refnamediv><refpurpose> +#: apt-transport-mirror.1.xml +msgid "APT transport for more automated mirror selection" +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt-transport-mirror.1.xml +msgid "" +"This APT transport isn't implementing a protocol to access local or remote " +"repositories on its own, but acquires a mirrorlist and redirects all " +"requests to the mirror(s) picked from this list access via other transports " +"like &apt-transport-http;. The basic functionality is available since apt " +"0.7.24, but was undocumented until apt 1.6 which contained a complete rework " +"of the transport and its supported features. Note that a transport is never " +"called directly by a user but used by APT tools based on user configuration." +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt-transport-mirror.1.xml +msgid "" +"If the acquisition of a file via a mirror fails the method ensures that " +"automatically another possible mirror of the list is tried until either the " +"file is retrieved or no mirror is left in the list handling transparently " +"server downtimes and similar problems." +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt-transport-mirror.1.xml +msgid "" +"The security implications of the transport are based on the security " +"considerations associated with the transport used to acquire the mirrorlist " +"and the transports involved in accessing the chosen mirror(s) by the " +"transport." +msgstr "" + +#. type: Content of: <refentry><refsect1><para> +#: apt-transport-mirror.1.xml +msgid "" +"This transport has no configuration options at present. The mirror selection " +"is based entirely on the mirrors offered in the mirrorlist and the files apt " +"needs to acquire." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><title> +#: apt-transport-mirror.1.xml +msgid "Mirrorlist format" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-mirror.1.xml +msgid "" +"A mirrorlist contains at least one line each specifying an URI for a " +"mirror. Empty lines and those starting with a hash key " +"(<literal>#</literal>) are ignored. An URI always starts with a URI scheme " +"which defines the transport used for this mirror. If the URI e.g. starts " +"with <literal>http:</literal> the responsible transport is " +"&apt-transport-http; which might have specific requirements for the format " +"of the remaining part of the URI." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-mirror.1.xml +msgid "" +"An URI can optionally be separated from metadata about the mirror by a tab. " +"Multiple datapoints in the provided metadata can itself be separated by " +"spaces for tabs. (This is an advanced feature only available with apt >= " +"1.6. Earlier apt versions will fail to parse mirrorlists using this feature)" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-mirror.1.xml +msgid "" +"Since apt 1.6 the usage of compressed mirrorlists is also supported. Note " +"that the filename of the mirrorlist must specify the compression algorithm " +"used, there is no auto-detection based on file content performed." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><title> +#: apt-transport-mirror.1.xml +msgid "Mirror selection by metadata" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-mirror.1.xml +msgid "" +"As specified in the format a mirror can have additional metadata attached to " +"prevent a mirror from being selected for acquiring a file not matching this " +"metadata. This way the mirrorlist can e.g. contain partial mirrors serving " +"only certain architectures and apt will automatically choose a different " +"mirror for files requiring an unlisted architecture. Supported are limits " +"for the architecture (<literal>arch</literal>), codename of the release " +"(<literal>codename</literal>), component of the repository the file is in " +"(<literal>component</literal>), language the file applies to " +"(<literal>lang</literal>), suite name of the release " +"(<literal>suite</literal>) and type of the file (<literal>type</literal>)." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><title> +#: apt-transport-mirror.1.xml +msgid "Fallback order for mirrors" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-mirror.1.xml +msgid "" +"If no priority is given via the metadata key <literal>priority</literal> for " +"a mirror the order in which mirrors are contacted is random. If a certain " +"set of mirrors should be tried first before any of another set is tried a " +"priority can be explicitly set. The mirrors with the lowest number are tried " +"first. Mirrors which have no explicit priority set default to the highest " +"possible number and are therefore tried last. The choice between mirrors " +"with the same priority is again random." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><title> +#: apt-transport-mirror.1.xml +msgid "Allowed transports in a mirrorlist" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-mirror.1.xml +msgid "" +"The availability and choice of transports in a mirrorlist is limited by how " +"the apt client is accessing the mirrorlist. If a local transport like " +"<literal>file</literal> or <literal>copy</literal> is used the mirrorlist " +"can also include local sources while a mirrorlist accessed via " +"<literal>http</literal> can not. Additionally, a mirrorlist can not contain " +"a mirrorlist or other wrapping transports (like " +"<package>apt-transport-tor</package>). See the documentation of these " +"transports on how to use them with the mirror method." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-mirror.1.xml +msgid "" +"Note that apt versions before 1.6 do not support any other transport than " +"<literal>http</literal>." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><title> +#: apt-transport-mirror.1.xml +msgid "Basic example" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-mirror.1.xml +msgid "" +"A basic mirrorlist example supported by all apt versions with a mirror " +"method (>= 0.7.24) in which the client will pick any of the three mirrors:" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><literallayout> +#: apt-transport-mirror.1.xml +#, no-wrap +msgid "" +"http://ftp.de.debian.org/debian/\n" +"http://ftp.us.debian.org/debian/\n" +"http://deb.debian.org/debian/\n" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-mirror.1.xml +msgid "" +"Assuming a file with this content is stored as " +"<filename>/etc/apt/mirrorlist.txt</filename> on your machine it can be used " +"like this in &sources-list; (since apt 1.6):" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><literallayout> +#: apt-transport-mirror.1.xml +#, no-wrap +msgid "deb mirror+file:/etc/apt/mirrorlist.txt &debian-stable-codename; main\n" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-mirror.1.xml +msgid "" +"All versions of the mirror method support a mirrorlist accessible via http, " +"so assuming it is available at " +"<literal>http://apt.example.org/mirror.lst</literal> the sources.list entry " +"from above could be written instead as:" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><literallayout> +#: apt-transport-mirror.1.xml +#, no-wrap +msgid "deb mirror://apt.example.org/mirror.lst &debian-stable-codename; main\n" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-mirror.1.xml +msgid "" +"Note that since apt 1.6 the use of <literal>mirror+http</literal> should be " +"preferred over <literal>mirror</literal> for uniformity. The functionality " +"is the same." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><title> +#: apt-transport-mirror.1.xml +msgid "Example with metadata-enhanced mirror selection" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-mirror.1.xml +msgid "" +"As explained in the format definition apt versions before 1.6 do not support " +"this and will fail parsing the mirrorlist. The example mirrorlist is " +"proposefully complicated to show some aspects of the selection. The " +"following setup is assumed: The first mirror is local mirror accessible via " +"the file method, but potentially incomplete. The second mirror has a great " +"connection, but is a partial mirror in sofar as it only contains files " +"related to the architectures <literal>amd64</literal> and " +"<literal>all</literal>. The remaining mirrors are average mirrors which " +"should be contacted only if the earlier ones didn't work." +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><literallayout> +#: apt-transport-mirror.1.xml +#, no-wrap +msgid "" +"file:/srv/local/debian/mirror/\tpriority:1 type:index\n" +"http://partial.example.org/mirror/\tpriority:2 arch:amd64 arch:all " +"type:deb\n" +"http://ftp.us.debian.org/debian/\ttype:deb\n" +"http://ftp.de.debian.org/debian/\ttype:deb\n" +"https://deb.debian.org/debian/\n" +msgstr "" + +#. type: Content of: <refentry><refsect1><refsect2><para> +#: apt-transport-mirror.1.xml +msgid "" +"In this setup with this mirrorlist the first mirror will be used to download " +"all index files assuming the mirrorlist itself is accessed via a local " +"transport like <literal>file</literal>. If it isn't, the mirror is otherwise " +"inaccessible or does not contain the requested file another mirror will be " +"used to acquire the file, which one depending on the type of the file: An " +"index file will be served by the last mirror in the list, while a package of " +"architecture <literal>amd64</literal> is served by the second and those of " +"e.g. architecture <literal>i386</literal> by one of the last three." +msgstr "" + #. type: Attribute 'lang' of: <book> #: guide.dbk offline.dbk msgid "en" -- cgit v1.2.3